Section Name
- Paste the certificate in the textbox Client Certificate.
- When a Subject Alternative Name (SAN) certificate has been pasted, the domains covered by the SAN are displayed in the Alternative Names line.
- Optional: Place custom EC parameters below the text block of your certificate.
- In the CA chain text box:
For intermediate CA certificates, paste the complete chain of intermediate CA certificates including the root CA into the textbox. All certificates must be Base64-encoded. - In the Private key text box:
- In case you use an unencrypted Private key:
- Paste the key into the textbox.
- In case you use an encrypted Private key:
- Paste the key into the textbox.
- Add the passphrase for the private key into the field Passphrase.
Example:
-----BEGIN CERTIFICATE----- MIIDPjCCAqegAwIBAgIBATANBgkqhkiG9w0BAQQFADCCAQcxHzAdBgNVBAoT aW9uIEFHIC0gSGVhZHF1YXJ0ZXIxHzAdBgNVBAMTFnBoaW9uIEFHIC0gSGVh ... I3ejmeNxHhmlEsd2ORKLyh3ofIaXpEkbf+gsQeE6UaFE83a7VKXrbsS+1zzl Tdd0ikPqLaOQ9CmjykNigfdgAAgAirlockE65g45rf34ERRRReed545fe5== -----END CERTIFICATE-----
Example:
-----BEGIN EC PARAMETERS----- BgUrgQQAIw== -----END EC PARAMETERS-----
Example:
-----BEGIN RSA PRIVATE KEY----- MIIEpAIBAAKCAQEAutxnTm+4qp0pO/aqo5u8CMUQFuz2Ee2OdN3GV5dKyHop efiTn9dsSO/XfXQtdBE9cz2qekspTHM/7rdwyhDcMNZoB0Mxm7MnAXA3tWg7 ... wMwB7LL/cy3BgPz338yOAI4Sg9HpJnAAUBx9AlicqtWxu+vlMVQhWXjAzTia 45zeBiPnEbittcDF7QfMCCvVnBWxAirlocktgp4tK2wNL1iF1wFMcw4Snw== -----END RSA PRIVATE KEY----
Example:
-----BEGIN RSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: DES-EDE3-CBC,684AF7A6B96C1CF7 GvERCGotGQCLjG97zIF159AF0OSKj3khkql7DnYfO5Bg95afskQDK0jBKDFd ... blTAST582u2LVZmP/lETW/l80h3NJvw7alPPiHD/JmRhZGPfXgsD1d4mn9T8 ka7nzc5HzqLuAfWs4IN9ofU/LhxXIAIRLOCK0Ii4pnE6+EI8CLi9GyivCw== -----END RSA PRIVATE KEY-----
Section Chain verification
With this tool, the back-end certificate chain can be validated.
- Paste the Root CA certificate into the textbox.
- The certificate content shows up in the textbox Root CA content.
- Click Verify certificate chain to perform a validation of CA chain down to Root CA.
- On success, the certificate chain is verifiable.